Health-ISAC White Papers

Health-ISAC
Health-ISAC is a trusted community of critical infrastructure owners and operators within the Health Care and Public Health sector (HPH). The community is primarily focused on sharing timely, actionable and relevant information with each other including intelligence on threats, incidents and vulnerabilities that can include data such as indicators of compromise, tactics, techniques and procedures (TTPs) of threat actors, advice and best practices, mitigation strategies and other valuable material. Sharing can occur via machine to machine or human to human. Health-ISAC also fosters the building of relationships and networking through a number of educational events in order to facilitate trust. Working groups and committees focus on topics and activities of importance to the sector and services such as Shared Services offer enhanced services to leverage the Health-ISAC community for the benefit of all.
Health-ISAC’s mission is to empower trusted relationships in the global healthcare industry to prevent, detect, and respond to cybersecurity and physical security events so that Members can focus on improving health and saving lives.
Health-ISAC collaborates with CERTS, health CERTS, other ISACs, government agencies and law enforcement across the globe. The National Council of ISAC’s provides framework for cross sector interaction amongst ISAC’s as well as private and public sector security entities. (www.nationalisacs.org)
Health-ISAC is constantly engaged with external partners such as government, law enforcement, the vendor community, other ISACs and HPH associations such as HIMSS, MDISS, EHNAC and CHIME to facilitate situational awareness and inform risk-based decision making to protect the HPH and other critical infrastructure sectors. Health-ISAC works with many partners and Cyber Emergency Response Teams (CERTS) globally.
- Related Resources & News
- Potential Terror Threat Targeted at Health Sector – AHA & Health-ISAC Joint Threat Bulletin
- New Cybersecurity Policies Could Protect Patient Health Data
- CyberWire Podcast: PHP flaw sparks global attack wave
- Health-ISAC Hacking Healthcare 3-14-2025
- HSCC Aiming to Identify Healthcare Workflow Chokepoints
- New Healthcare Security Benchmark Highlights Key Investment Priorities and Risks
- Are Efforts to Help Secure Rural Hospitals Doing Any Good?
- CISA cuts $10 million annually from ISAC funding for states amid wider cyber cuts
- 2024 Health-ISAC Discussion Based Exercise Series After-Action Report
- Cobalt Strike takedown effort cuts cracked versions by 80%